Plus Addressing, also known as sub addressing or tag addressing, is a feature in Exchange Online (Microsoft 365) that allows you to create custom email addresses based on your standard email address by adding a "+" symbol followed by a keyword to your email address before the "@" symbol. For...
When planning the deployment of Microsoft Sentinel, it is important to understand how much data is likely to be ingested and the cost of that ingestion. The good news is that there are quite a few services that you can ingest for free and having a good handle on which...
Microsoft Sentinel, Microsoft's SIEM/SOAR solution, uses an Azure Log Analytics Workspace as it's backend and as such previously the pricing of sentinel was split between the Log Analytics Workspace and the Sentinel Service. This month (July 2023) Microsoft has been rolling out a simplified pricing for new Sentinel Workspaces. As...
As well as some name changes, at the Microsoft Entra event on Tuesday (11 July 2023), Microsoft announced Microsoft Entra Internet Access and Microsoft Entra Private Access, which combined are termed as Global Secure Access . Within Microsoft Entra, with these new Global Secure Access services, you can now create...
Another day and another round of Microsoft product name changes - this time Azure AD and related products are being aligned with the Microsoft Entra product family name. The Microsoft Entra product family was announced in May 2022 as packaging together of all the Microsoft identity and access products, including...
So often I arrange two browser windows side-by-side when working with multiple websites (as always). But no more! I just found that in Microsoft Edge one can split the browser window. To achieve this: Type edge://flags/#edge-split-screen in the address bar Enable Microsoft Edge Split Screen Restart Edge Once you've done...
Visiting London for the first time in over twenty years I reflect on the ever-changing cybersecurity landscape and the need to not lose track of the security fundamentals that should underpin all security practices.
The term "Zero Trust" was coined by Forrester Research analyst John Kindervag in 2010 . It follows the motto "never trust, always verify" and assumes that risk exists both inside and outside a network. A zero trust strategy requires the authentication of every connection from every user and device and...
Secure Access Service Edge (SASE) is a security framework that converges network and security service that includes SD-WAN, SWG, CASB, NGFW and Zero Trust Network Access (ZTNA). This article forms part of a series of articles that look at various acronyms used in cyber security, explain them and explore Microsoft's...
When meetings conclude early, the term “Let me give you back 10 minutes of your life” to wrap things up, always make me cringe. Focussing on ‘giving back’ implies that the time was somehow ‘taken’ from the attendees. It implies loss, as if the meeting was burdensome or unnecessary. Assuming...
Vulnerability Management tools help identify, categorise, and manage vulnerabilities in IT systems. This can include unsecure configurations; missing updates, patches or other security-related updates for applications, services, and operating systems whether on-prem or cloud based. The Center for Internet Security (CIS) lists continuous vulnerability management as one of the Critical...
The Center for Internet Security is a nonprofit entity whose mission is to 'identify, develop, validate, promote, and sustain best practice solutions for cyberdefense.' It draws on the expertise of cybersecurity and IT professionals from government, business, and academia from around the world. To develop standards and best practices, including CIS benchmarks,...
Security Orchestration, Automation and Response (SOAR) is a collection of technologies that enable organizations to monitor, analyze, and automate response to security incidents from a single interface.
Microsoft Defender for Cloud Apps (previously Microsoft Cloud App Security) is a CASB that supports various deployment modes and provides rich visibility, control, and analytics to combat cyberthreats across all Microsoft and third-party cloud services.
To clarify the ever-increasing number of acronyms in the cyber security space I have started curating this list of definitions and links to articles. CASB = Cloud Access Security Broker A cloud access security broker (CASB) is a security policy enforcement point positioned between enterprise users and cloud service providers....
